This website is used in support for the NLnet Labs DNSSEC training.
Instructors
| Olaf Kolkman & Willem Toorop | (NLnet Labs) |
Agenda
Click for presentation and exercise slides
------------------------------
Welcome
Introduction and mutual expectations
BLOCK 1 Classic DNS
+ Overview of DNS and its weaknesses.
+ Unbound security settings
+ Protecting Authoritative servers using TSIG
BLOCK 2: Unbound in practice
[possibly skipped]
+ Theory and Demonstrations around UNBOUND Hardware dimensioning
Network issues affecting Performance Advanced configuration /
Performance settings Monitoring
BLOCK 3: DNSSEC in Theory DNS Security fundamentals
+ Public Key Cryptography Sleutels en de DNS Resource Records
+ Theory of operations Chains of Trust Do's and don'ts of DNSSEC
serving Troubleshooting
+ Signature failures Transport failures strategies and tools for
troubleshooting
BLOCK 4: DNS KEYs: risks and management Theoretische introductie van
OpenDNSSEC Demonstratie of, afhankelijk van beschikbare tijd,
installatie in het lab
BLOCK 5: Introducing DNSSEC in a workflow How to design your project,
components to think about Participants take a stab at a high level
project plan
[possibly skipped]
BLOCK 6: Software and tools availability and development
+ where to find more information and some hints and tips on writing
software with Net::DNS and ldns
------------------------------
|
||
|
Support NLnet Labs' mission | ||